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METHOD FOR PREVENTING THEFT OF VEHICLES BY PERFORMING 
IGNITION KEY AUTHORIZATION 
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CROSS-REFERENCE TO RELATED APPLICATION 

This application claims priority of Korea patent Application No. 2000-56124, filed on 
September 25, 2000. 

10 

BACKGROUND OF THE INVENTION 

(a) Field of the Invention 

The present invention relates to a method for preventing the theft of vehicles 
by performing ignition key authorization, and more particularly, to a method for 
preventing the theft of vehicles by performing ignition key authorization in which 
coding and authorization are performed without the use of a separate authorization 
unit. 

(b) Description of the Related Art 

Most large cities of the world have experienced a continuously increasing 
number of vehicles being stolen each year, or at least the maintenance of 
consistently high levels of car theft. Accordingly, many automobile manufacturers 
provide their vehicles with car alarms, and continue research into improved ways to 
prevent car theft. 

One relatively new method of preventing the theft of vehicles is that of using 
an ignition key that is installed with a unique code that the vehicle recognizes. That 
is, a fixed code is commonly assigned to an integrated circuit (IC) installed in the 
ignition key, and the vehicle may be started only if authorization of the specific code 
occurs. 

However, with the use of the prior art ignition key authorization method, a 
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separate code authorization unit is required to decipher the code installed in the IC 
provided in the ignition key to thereby enable an engine control unit to authorize the 
5 code. The engine control unit determines whether to allow the engine to be started 
based on an authorization signal output from the code authorization unit. 

As a result, the number of parts needed for the entire system is increased with 
10 the use of the separate code authorization unit. Further, the system may not be fully 
secure since whether to permit the starting of the engine is performed by the engine 
control unit based on a transmitted signal (from the code authorization unit). For 
example, a code scanner or code grabber may be used to defeat the system. 

15 SUMMARY OF THE INVENTION 

The present invention has been made in an effort to solve the above 
problems. 

20 it is an object of the present invention to provide a method for preventing the 

theft of vehicles by performing authorization of an ignition key, in which coding and 
authorization are performed in an engine control unit without the use of a separate 
authorization unit, and in which undesired decoding is made difficult through the use 

25 of multi-step bit operations. 

To achieve the above object, the present invention provides a method for 
performing authorization of an ignition key by using an engine control unit (ECU) and 
an ignition key that stores a key ID, a lock password and a key password, the 
30 method comprising the steps of (1) the ECU receiving the key ID from the ignition 
key and determining if the key ID is a registered ID; (2) generating, if the key ID is 
the registered ID, a random number and encoding a stored lock password using the 
random number, and transmitting the random number and the encoded lock 
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password to a transponder of the ignition key; (3) the transponder decoding the lock 
password using the received random number and encoded lock password, then 

5 determining if the decoded lock password is identical to a stored lock password; (4) 
the transponder encoding a key password using a stored key password, and 
transmitting by the transponder the encoded key password to the ECU; (5) the ECU 
decoding the received encoded key password, then determining if the decoded key 

10 password is identical to the stored key password; and (6) releasing an ignition lock 
state if the decoded key password is identical to the stored key password. 

According to a feature of the present invention, the ECU includes shift 
registers T and S, and the encoding of the lock password in step (2) comprises the 

15 

steps of (7) initializing and modulating the shift registers T and S using the random 
number; (8) generating a first session key; and (9) encoding the stored lock 
password using the first session key, and wherein the decoding of the lock password 
using the random number and encoded lock password in step (3) are performed 
20 using the same processes involved in encoding the stored lock password using the 
random number of step (2). 

According to another feature of the present invention, the initialization of the 
25 shift registers of step (7) includes the step of generating a random number, and 
wherein the shift register modulation of step (7) is realized by designating a plurality 
of functions that receive input of a plurality of bit values and calculate a single bit 
value; designating an F2 function that receives input of calculation result values from 
the functions and calculates bit values; and repeating processes in which the shift 

3 0 

registers T and S are shifted to the left, and determining an LSB of the shift register 
S using the F2 function values and the random number. 

According to yet another feature of the present invention, in the generation of 

35 
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the first session key of step (8), a plurality of functions are designated that receive 
input of a plurality of bit values and calculate a single bit value, an F3 function is 
5 designated that receives input of calculation result values from the functions and 
calculates bit values, and bits of the first session key are calculated from the F3 
function values. 



10 According to still yet another feature of the present invention, the plurality of 

functions is identical to the plurality of functions of step (7), and the F3 function is 
identical to the F2 function. 

According to still yet another feature of the present invention, the ECU 
15 includes shift registers T and S, wherein encoding of the stored key password of step 
(4) comprises the steps of (10) generating a second session key; and (11) encoding 
the stored key password using the second session key, and wherein the decoding of 
the encoded key password in step (5) is performed using the same processes as are 
involved in the encoding of the key password. 



20 



25 



According to still yet another feature of the present invention, in the 
generation of the second session key of step (10), a plurality of functions are 
designated that receive input of a plurality of bit values and calculate a single bit 
value, an F4 function is designated that receives input of calculation result values 
from the functions and calculates bit values, and bits of the second session key are 
calculated from the F4 function values. 



30 BRIEF DESCRIPTION OF THE DRAWINGS 

The accompanying drawings, which are incorporated in and constitute in a 
part of the specification, illustrate an embodiment of the invention, and, together with 
the description, serve to explain the principles of the invention: 

35 
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FIG. 1 is a schematic view of an ignition key authorization system and related 
5 elements to which a method of a preferred embodiment of the present invention is 
applied; 

FIG. 2 is a flow chart of a method for preventing the theft of vehicles by 
performing authorization of an ignition key according to a preferred embodiment of 

10 

the present invention; 

FIG. 3 is a drawing for describing initialization and modulation of shift registers 
T and S according to a preferred embodiment of the present invention; 

15 

FIG. 4 is a flow chart of a modulation process of shift registers T and S 
according to a preferred embodiment of the present invention; 

2 0 FIG. 5 is a drawing for describing the generation of a first session key 

according to a preferred embodiment of the present invention; 

FIG. 6 is a flow chart of a process for generating a first session key according 
to a preferred embodiment of the present invention; and 

25 

FIG. 7 is a flow chart of a process for generating OUTPUT(i), which is s 
performed in a step of determining SO of FIG. 6. 

30 DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS 

Preferred embodiments of the present invention will now be described in 
detail with reference to the accompanying drawings. 

FIG. 1 shows a schematic view of an ignition key authorization system and 
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related elements to which a method of a preferred embodiment of the present 
invention is applied. 

5 

An ignition key authorization system and related elements includes an ignition 
key 120 in which there is installed a transponder 110, which decodes an inputted 
code, calculates a code, and performs encryption of a calculated signal; a key box 
10 130 including a key opening into which the ignition key 120 is inserted, the key box 
130 transmitting and receiving signals with the ignition key 120; and an engine 
control unit 150 for transmitting and receiving code signals between the key box 130. 

A coil antenna 140 is provided within the key box 130. Data is transmitted and 

15 

received between the key box 130 and the transponder 1 10 of the ignition key 120 
through the coil antenna 140. Further, the engine control unit 150 is connected to the 
coil antenna 140 via a data interface 160 such that data is transmitted and received 
therebetween. 

20 

The transponder 1 10 of the ignition key 120 is realized through an IC chip that 
is able to perform encryption, decoding, and calculations. Also, the engine control 
unit 150 is realized through a conventional electronic control unit(ECU). Stored in the 
25 transponder 1 10 are a 4-byte key identifier (hereinafter referred to as an ID), a 6-byte 
authenticator (hereinafter referred to as AUTHEN) for authenticating a code, and a 4- 
byte lock password and key password. 

Shift registers T and S are provided in the engine control unit 150 for 
30 encoding, decoding and performing calculations. Also, key ID, AUTHEN, lock 
password and key password identical to those stored in the transponder 110 are 
stored in the engine control unit 150. 

35 
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FIG. 2 shows a flow chart of a method for preventing the theft of vehicles by 
performing authorization of an ignition key according to a preferred embodiment of 
5 the present invention. 

First, if the ignition key 120 is inserted in the key box 130, the engine control 
unit 150 receives input of a key ID from the transponder 110 installed in the ignition 
10 key 120 in step S210. Next, the engine control unit 150 determines if the key ID is a 
registered ID in step S215. If it is determined that the key ID is not a registered ID, 
an ignition lock state in which ignition is not possible is maintained in step S217. In 
the ignition lock state, the supply of fuel may be blocked and output of the ignition 
system may be prevented. 

15 

However, if it is determined that the key ID is a registered ID in step S215, a 
4-byte random number (RN) is generated in step S220. Next, initialization and 
modulation of the shift registers T and S based on the input key ID and stored 
20 AUTHEN are performed in step S225. The modulation of the shift registers T and S 
is performed based on the inputted key ID, stored AUTHEN, and RN after the shift 
registers T and S are initialized. 

FIG. 3 is a drawing for describing the initialization and modulation of the shift 
registers T and S. 

With reference to FIG. 3, the shift registers T and S are arranged from most 
significant bit (MSB) to least significant bit (LSB). An LSB of the shift register T is 
30 adjacent to a MSB of the shift register S. The shift register T stores an ID0 and ID1 
byte of the key ID (four bytes of ID0, ID1, ID2 and ID3) input from the transponder 
110, and the shift register S sequentially stores ID2 and ID3 of the key ID, and four 
bytes of AUTHEN4 and AUTHEN5 of the stored AUTHEN (6 bytes of AUTHEN0 TO 
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AUTHEN5). Each bit of the shift register S is indexed from LSB to MSB (SO to S31), 
and each bit of the shift register T is indexed from LSB to MSB (TO to T15). 

5 

After the shift registers S and T are initialized as described above, the LSB of 
the shift register S is calculated using established functions FO, Fl and F2. By 
repeating the process for shift calculation of the shift registers T and 5, the shift 
10 registers T and S are modulated. The functions FO and F1 are functions that use 4 
bits as input values to calculate a single bit, and the function F2 is a function that 
uses 5 bits as input values to calculate a single bit. That is, the function values are 
calculated as follows. 

15 F0(a,b,c,d) = 

(a x b x~d)+(a xcx d)+(b xcx d)+(b xcx d)+(a xfx'cx d) 

F1 (a,b,c,d) = 

20 (c x d)+(a x~b x c)+(ax'b x d)+(a xcxU) 

F2(a,b,c,d,e) = 

(cxdxe)+(axbx ~e)+(a x'bx c)+(b xcxdx e)+(a x~5xdx e)+ 

25 _ 

(a x c x d x e)+(a x b xc x d x e) 

However, values calculated from the shift registers T and S are used by the 5 
bits that are used as an input value of F2. That is, if QO, Q1 , Q2, Q3 and Q4 are the 
3 0 input values of the F2 function, values calculated as follows are input and calculated: 
Q0 = F0(S1,S5, S10,S13),Q1 = F1 (S15.S16, S18, S19), Q2 = F1 (S21.S25, S26, 
S30), Q3 = F1(T0, T1, T5, T7), and Q4 = F0(T8, T10, T12, T15). 

35 



-8- 



1 



47358/RAH/Y35 



Regarding AUTHEN in the above, each bit of the 4 bytes (32 bits) from 
AUTHENO to AUTHEN3 is indexed in AUTHEN(i), and each bit of RN is indexed in 
5 RN(i). 

The bits according to the results of the F2 calculation are combined and 
calculated repeatedly with AUTHEN(i) and RN(i) such that the shift registers T and S 
10 are modulated. That is, the modulation of the shift registers T and S is realized 
through the processes shown in the flow chart of FIG. 4. 

First, variable i is assigned the value 0 in step S410, and F2 calculations as in 
the above are performed in step S420. Next, shift register T is shifted 1 bit to the left 

15 

in step S430, a value of S31 is assigned to TO in step S440, and shift register S is 
shifted to the left 1 bit in step S450. 

Subsequently, RN(i), AUTHEN(i), and the F2 calculation resulting value are 
20 assigned to SO. That is, an RN(i) AUTHEN(i) F2 calculation resulting value is 

assigned to SO. The symbol " " denotes an XOR operation, in which a 1 is output if 
the values on left and right sides of the operator are different from each other and a 
0 is output if the values are the same. 

25 After step S460, it is determined if i = 31 in step S470. If i equals 31 , the 

process is ended. However, if i does not equal 31 , i is incremented by 1 in step 
S480, after which the process is returned to step S420. As a result of this loop, until i 
takes on the value of 31 , the shift registers T and S undergo a total of 32 shift 

30 operations (including when i = 0). 

Referring back to FIG. 2, after the initialization and modulation of the shift 
registers T and 5, a first session key is generated using the modulated shift registers 
_ c T and 5, and an established internal key in step S230. The first session key is 
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established as a 6-byte number. 

5 FIG. 5 shows a drawing for describing the generation of the first session key. 

With reference to the drawing, the initialized shift registers T and S are 
arranged from MSB to LSB, and an LSB of the shift register T is adjacent to a MSB 
10 of the shift register S. The internal key is arranged corresponding to bits of the shift 
registers T and S. 

To generate the first session key, FO, Fl and F2 functions, which calculate bits 
from the shift registers T and S, are defined. FO, Fl and F2 functions are defined as 

15 

the same functions as when initializing the shift registers T and S. 

Each bit of the first session key is calculated by the F2 function. After s one bit 
of the first session key is calculated, left shifts of the shift registers T and S are 

2 0 calculated, and a SO bit is determined by a specifically designated calculation as 

shown in A of FIG. 5. This process is repeated to calculate the first session key. 

FIG. 6 shows a flow chart of a process for generating the first session key. 

25 

First, variable i and a result value are assigned the value 0 to thereby 
complete initialization of the variables in step S610. Next, F2 calculations are 
performed as in the above such that an i-th bit value of the first session key is 
obtained in step S620. Subsequently, shift register T is shifted i bit to the left in step 

3 0 S630, a value of S31 is assigned to TO in step S640, and shift register S is shifted to 

the left 1 bit in step S650. 

Following step S650, OUTPUT(i) is generated by a predetermined OUTPUT 
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function and is assigned to SO in step S660. Next, it is determined if i = 31 in step 
S670. If i equals 31 , the process is ended. However, if i does not equal 31 , i is 
5 incremented by 1 in step S680, after which the process is returned to step S620. As 
a result of this loop, until i takes on the value of 31 , the shift registers T and S 
undergo a total of 32 shift operations (including when i = 0). 

10 FIG. 7 is a flow chart of a process for generating OUTPUT(i) of step S650 of 

FIG. 6. 

First, variable j is assigned the value 0 in step S710. Next, it is determined 
whether a j-th bit Pj equals 1 in step S720. If Pj equals 1 , it is determined if j is less 

15 than or equal to 31 in step S730. If j is less than or equal to 31 , an XOR operation is 
performed with Sj O'-th bit of register 5) and variable Result, after which the result is 
assigned to the variable Result in step S740. However, if j is greater than 31 , an 
XOR operation is performed with Tj. 32 (0— 32)-th bit of register T) and variable 

2 0 Result, after which the result is assigned to the variable Result in step S750. 

If Pj does not equal i in step S720 or after steps S740 and S750, it is 
determined if j equals 47 in step S760. If j does not equal 47, the process is returned 
to step S720 such that calculation with respect to all bits of the internal key can be 

2 5 

performed. However, if j equals 47 in step S760, the Result value is assigned to 
OUTPUT(i) in step S770. Step S660 of FIG. 6 is thereby completed with the above 
operations. 

3 0 Referring again to FIG. 2, following the generation of the first session key in 

step S230, calculations to encode a lock password are performed in step S235. A 
stored lock password and the first session key are used in encoding the lock 
password. That is, an XOR operation is performed on the lock password and the first 
session key, which are each comprised of 4 bits. 
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Next, the engine control unit 150 transmits the random number and lock 
5 password to the transponder in step S240, and the transponder 110 receives the 
random number and lock password in step S242. The transponder 110 then 
generates a first session key in step S245 using the same processes as in steps 
S225 and 8230. That is, the first session key is generated by the transponder 110 
10 using the same logic as when generated in steps S225 and S230 such that the first 
session key is generated according to the logic by a circuit configuration even if shift 
registers are not included in the transponder 110. Accordingly, the first session key 
generated by the transponder 110 is identical to the first session key generated by 
the engine control unit 150. 

15 

Following step S245, the transponder 110 performs an XOR operation on the 
first session key and the lock password such that the lock password is in decoded in 
step S250. That is, using the identical first session keys, the XOR operation is 

2 0 repeated such that encryption and decoding are possible. 

Next, the transponder 110 determines if the decoded lock password is 
identical to a stored lock password in step S255. If the passwords are not identical, 
the processes involved in the ignition key authorization method of the present 
invention are discontinued and the ignition lock state is maintained. However, if the 
passwords match, a second session key is generated in step S260 based on the 
modulated shift registers T and S using the same processes involved in step S230. 

3 0 The transponder 1 1 0, which generates the second session key, then performs 

an XOR operation on the stored key password and generated second session key 
such that a key password is encoded in step S265. The encoded key password is 
then transmitted to the engine control unit 150 in step S270, and the engine control 
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unit 150 receives the password in step S272. 

5 Subsequently, the engine control unit 150, using identical processes as those 

involved in the generation of the first session key of step S230, generates a second 
session key based on the values of the modulated shift registers T and S in step 
S275. The engine control unit 150 then performs an XOR operation on the generated 

10 second session key and the received key password such that the key password is 
decoded in step S280. 

Next, the engine control unit 150 determines if the decoded key password is 
identical to a stored key password in step S285. If the passwords are not identical, 

1 5 

the ignition lock state in which ignition is not possible is maintained in step S287. 
However, if the passwords match, the ignition lock state is released in step S290. 
That is, fuel supply and ignition system output are permitted. 

2 0 In the method of the present invention described above, security is increased 

by performing the encoding and decoding of various passwords in the engine control 
unit. Further, the reliability of codes is increased by performing encoding and 
decoding in multiple steps of bit operations. Also, since no additional system is 
25 required to perform ignition key authorization, manufacturing processes and overall 
costs are reduced, and space needed for such an extra system is saved. 

Although preferred embodiments of the present invention have been 
described in detail hereinabove, it should be clearly understood that many variations 

3 0 

and/or modifications of the basic inventive concepts herein taught which may appear 
to those skilled in the present art will still fall within the spirit and scope of the present 
invention, as defined in the appended claims. 

35 
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